Supplemental Cyber Highlights – February 29, 2024

The following posts are useful for general awareness of current cyber threats, vulnerabilities, guidance, and other cyber-related news or updates. These resources have been curated by the WaterISAC analyst team as items of broad relevance and benefit that do not need supplemental analysis at this time.

Critical Infrastructure

• Building Security: Facing Converging Cyber-Physical Risks | Facility Executive

IT Malware, Threats & Risks

• Network Infrastructure: A rising cyber battleground | SC Media
• Calendar Meeting Links Used to Spread Mac Malware | KrebsOnSecurity
• State-sponsored hackers know enterprise VPN appliances inside out | HelpNetSecurity
• How the National Vulnerability Database Could Be Abused to Spread Malware | Nozomi Networks

IT Vulnerabilities

• Exploit Attempts for Unknown Password Reset Vulnerability | SANS Technology Institute
• Anycubic 3D printers hacked worldwide to expose security flaw | BleepingComputer
• Cutting Edge, Part 3: Investigating Ivanti Connect Secure VPN Exploitation and Persistence Attempts | Mandiant
• Windows Zero-Day Exploited by North Korean Hackers in Rootkit Attack | Security Week

Ransomware

• Is the LockBit gang resuming its operation? | Security Affairs
• SugarLocker ransomware subjected to Russian crackdown | SC Media

Cyber Resilience & General Awareness

• Superusers Need Super Protection: How to Bridge Privileged Access Management and Identity Management | The Hacker News
• Proofpoint’s 2024 State of the Phish Report: 68% of Employees Willingly Gamble with Organizational Security | Proofpoint
• Registrars can now block all domains that resemble brand names | BleepingComputer
• The First Steps of Establishing Your Cloud Security Strategy | Center for Internet Security
• Need to Know: Key Takeaways from the Latest Phishing Attacks | BleepingComputer